VYPR
High severity8.8NVD Advisory· Published Dec 30, 2021· Updated Jun 17, 2026

CVE-2021-20132

CVE-2021-20132

Description

Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 use default hard-coded credentials, which can allow a remote attacker to gain administrative access to the zebra or ripd those services. Both are running with root privileges on the router (i.e., as the "admin" user, UID 0).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • D-Link/DIR-2640description
  • Dlink/DIR-2640llm-create
    Range: <=1.11B02

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.